Legal

Privacy Policy

Last updated: May 4, 2026

Nimbulus respects your privacy and is committed to protecting the personal data it collects. This Policy describes, in plain terms, what data we process, for what purpose and what your rights are as a data subject, in compliance with the LGPD (Brazil's General Data Protection Law, No. 13,709/2018).

1. Who we are

Nimbulus Tecnologia Embarcada Ltda., headquartered at Rua Manoel Pacheco da Silva, 55, Palhoça — SC, Brazil, is the controller of the data processed in connection with this website and the related communication channels.

Data Protection Officer (DPO): i.ramos@nimbulus.com.br.

2. What data we collect

2.1. Data you provide

When you reach out through the website form, WhatsApp or email, we may collect:

  • Full name;
  • Email;
  • Phone (including WhatsApp number);
  • Company, role and segment, when provided;
  • Content of the message sent and any attached files.

2.2. Browsing data

We automatically collect, in aggregated and anonymized form, technical data about your visit: pages viewed, time on page, traffic source, device and browser type. This data is used solely for continuous improvement of the website.

3. Legal bases for processing

Your data is always processed under one of the lawful bases set out in article 7 of the LGPD, depending on the case:

  • Consent — when you actively provide your data by filling in a form or initiating contact.
  • Performance of a contract or pre-contractual steps — when the data is required to respond to a quote, commercial proposal or order.
  • Legitimate interest — for site performance analysis, information security and improvement of our products and services, always respecting your fundamental rights and freedoms.
  • Compliance with a legal or regulatory obligation — when required by applicable law.

4. How we use your data

We use the information collected to:

  • Respond to inquiries, quotes and commercial requests;
  • Send technical sheets, proposals and requested materials;
  • Schedule factory visits and meetings;
  • Maintain a record of the commercial relationship;
  • Improve the content, usability and security of the website;
  • Comply with legal, contractual and regulatory obligations.

5. Data sharing

Nimbulus does not sell personal data. We share information only with service providers strictly necessary to operate the website and the support channels, under contractual confidentiality and security obligations:

  • Hosting and content delivery: Vercel Inc., responsible for the website infrastructure;
  • Communication: WhatsApp (Meta Platforms) and our corporate email provider, when you choose to use those channels;
  • Analytics: privacy-focused analytics tools that process data in aggregated form.

We may also share data when required by competent authority, court order, or for the regular exercise of rights.

6. Cookies

We use cookies and similar technologies for the operation of the website and usage analysis. For details on which cookies we use and how to manage them, see our Cookies Policy.

7. Your rights as a data subject

Under article 18 of the LGPD, you may exercise, at any time, the following rights regarding your personal data:

  • Confirmation that processing is taking place;
  • Access to the data;
  • Correction of incomplete, inaccurate or outdated data;
  • Anonymization, blocking or deletion of unnecessary or excessive data, or data processed in violation of the law;
  • Data portability to another provider;
  • Deletion of personal data processed under your consent, except where retention is legally required;
  • Information about the public and private entities with which your data has been shared;
  • Information about the option not to provide consent and the consequences of refusal;
  • Withdrawal of consent.

8. How to exercise your rights

To exercise any of the rights above, send your request to i.ramos@nimbulus.com.br, identifying yourself and describing the request. We will respond within the shortest possible time, observing the limits set by law.

9. Data retention

Personal data is kept only for as long as necessary to fulfill the purposes for which it was collected, or while a legal, contractual or regulatory retention obligation applies. After that period, data is securely deleted or anonymized.

10. Information security

We adopt reasonable technical and administrative measures to protect your data against unauthorized access, loss, alteration or improper disclosure, including encryption in transit (HTTPS), access control, backups and monitoring. Despite these efforts, no method of electronic transmission or storage is entirely free of risk.

11. Updates to this Policy

This Policy may be updated periodically to reflect legal, technical or operational changes. The current version is always the one published on this page, identified by the last update date in the header. Periodic review is recommended.

12. Contact

For questions, suggestions or requests related to this Policy or the processing of your personal data, contact us at i.ramos@nimbulus.com.br.